Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/dPruA2gIeflV7P2jvBvbapF_0oU.roa
File: dPruA2gIeflV7P2jvBvbapF_0oU.roa (raw, json)
Hash identifier: wjxnEfYkpfwCqT+KP/JSCytp2BQZzF0IQymBF1M/NKo=
Subject key identifier: 74:FA:EE:03:68:08:79:F9:55:EC:FD:A3:BC:1B:DB:6A:91:7F:D2:85
Certificate issuer: /CN=215a409d27b9a69346324004694da11beae02dbb
Certificate serial: 018BECF5022ED3723B12AA6BCA99DCFB3EA2
Authority key identifier: 21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/dPruA2gIeflV7P2jvBvbapF_0oU.roa
Signing time: Mon 20 Nov 2023 13:39:21 +0000
ROA not before: Mon 20 Nov 2023 13:39:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56902
IP address blocks: 185.134.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ec:f5:02:2e:d3:72:3b:12:aa:6b:ca:99:dc:fb:3e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215a409d27b9a69346324004694da11beae02dbb
Validity
Not Before: Nov 20 13:39:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74faee03680879f955ecfda3bc1bdb6a917fd285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:0e:f0:f2:98:72:c5:8a:7f:f4:33:06:00:aa:
28:a6:37:03:9f:a1:fe:09:bf:06:77:34:26:df:c6:
08:11:75:cf:7a:85:1f:5e:82:4f:68:c4:25:d6:e5:
59:12:b7:62:98:55:53:2e:b0:57:0a:4e:ca:80:7d:
3b:f3:0a:39:5f:75:d4:36:f6:08:8e:c4:d8:bc:7b:
ea:28:5c:41:aa:77:89:e8:48:ff:cc:86:06:0d:68:
7a:aa:e5:e2:52:80:9a:7b:88:09:0b:83:07:78:64:
ea:94:0f:94:f6:aa:79:9b:15:4e:37:5f:bb:95:37:
50:56:69:82:76:65:a1:1b:81:c7:4a:97:1f:76:1c:
bc:4f:ea:4e:60:14:de:e0:cb:73:6b:5f:25:f3:6c:
90:0c:5d:e5:e3:8f:06:81:23:f2:f0:03:df:c5:3d:
88:bb:f8:4b:ca:ef:57:77:cf:1a:be:44:68:d4:19:
37:33:03:1b:1e:fd:e3:a5:cc:9e:31:86:b8:59:9e:
16:7f:ba:1a:7f:fe:6a:13:e4:59:d9:14:ba:be:fa:
75:99:b6:a5:8e:f7:3c:db:e8:a8:53:13:e6:62:cf:
4f:f3:1b:e0:9d:2b:f8:b6:69:cb:0a:71:7f:b5:f0:
12:ba:59:b8:8e:ca:2f:ec:91:04:bf:12:a1:59:ab:
e1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:FA:EE:03:68:08:79:F9:55:EC:FD:A3:BC:1B:DB:6A:91:7F:D2:85
X509v3 Authority Key Identifier:
keyid:21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/dPruA2gIeflV7P2jvBvbapF_0oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/IVpAnSe5ppNGMkAEaU2hG-rgLbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:da:4d:1c:b0:b6:20:77:6d:6b:80:cf:95:95:a5:a8:1e:94:
de:dc:96:f0:b7:5f:bb:69:49:85:5a:38:e6:81:e0:30:db:82:
5e:03:69:4e:84:8a:35:69:95:6f:6d:fd:05:b8:99:74:d4:8c:
07:24:4a:53:6a:7e:ec:26:d9:f5:6e:d6:46:d2:4b:a2:c5:73:
36:d8:a3:df:69:2d:50:56:4a:12:6d:33:29:7c:2f:c4:8a:23:
1e:8a:2d:a0:1c:5f:be:e6:6a:0e:87:44:9c:73:e7:d1:2b:b4:
12:ab:9e:b2:ff:e3:aa:e3:52:e5:05:fa:74:fa:9e:e5:db:40:
e4:cf:86:9d:82:99:59:ac:ff:66:fc:41:ef:86:5b:55:26:a0:
51:a2:62:87:72:c8:da:d5:a7:00:10:b4:14:cb:fb:14:90:e8:
e7:6c:92:79:e3:7b:81:08:78:e6:b2:8e:99:1c:c0:11:81:cc:
13:d0:56:58:8f:c3:b8:c5:8e:f4:31:50:54:ad:fa:61:60:cc:
74:9b:fc:aa:42:e7:b2:9c:27:8d:f4:6d:84:21:65:b1:14:c1:
41:9d:9d:4a:af:29:81:4b:88:9c:ed:3c:9f:78:f5:03:1d:13:
e2:6c:15:72:08:0c:9e:85:6b:4d:b6:6f:4f:57:31:69:97:bf:
fd:17:67:6e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvs9QIu03I7Eqprypnc+z6iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNWE0MDlkMjdiOWE2OTM0NjMyNDAwNDY5NGRhMTFiZWFl
MDJkYmIwHhcNMjMxMTIwMTMzOTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGZhZWUwMzY4MDg3OWY5NTVlY2ZkYTNiYzFiZGI2YTkxN2ZkMjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw7w8phyxYp/9DMGAKoopjcDn6H+
Cb8GdzQm38YIEXXPeoUfXoJPaMQl1uVZErdimFVTLrBXCk7KgH078wo5X3XUNvYI
jsTYvHvqKFxBqneJ6Ej/zIYGDWh6quXiUoCae4gJC4MHeGTqlA+U9qp5mxVON1+7
lTdQVmmCdmWhG4HHSpcfdhy8T+pOYBTe4Mtza18l82yQDF3l448GgSPy8APfxT2I
u/hLyu9Xd88avkRo1Bk3MwMbHv3jpcyeMYa4WZ4Wf7oaf/5qE+RZ2RS6vvp1mbal
jvc82+ioUxPmYs9P8xvgnSv4tmnLCnF/tfASulm4jsov7JEEvxKhWavhbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHT67gNoCHn5Vez9o7wb22qRf9KFMB8GA1UdIwQY
MBaAFCFaQJ0nuaaTRjJABGlNoRvq4C27MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZwQW5TZTVwcE5HTWtBRWFVMmhHLXJnTGJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9mMGM5ZTMtMWM0MC00ZjMzLTk1Y2Ut
OThkMmZlZTBmODdhLzEvZFBydUEyZ0llZmxWN1AyanZCdmJhcEZfMG9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9mMGM5ZTMtMWM0MC00ZjMzLTk1Y2UtOThkMmZlZTBmODdh
LzEvSVZwQW5TZTVwcE5HTWtBRWFVMmhHLXJnTGJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuYaxMA0G
CSqGSIb3DQEBCwUAA4IBAQBP2k0csLYgd21rgM+VlaWoHpTe3Jbwt1+7aUmFWjjm
geAw24JeA2lOhIo1aZVvbf0FuJl01IwHJEpTan7sJtn1btZG0kuixXM22KPfaS1Q
VkoSbTMpfC/EiiMeii2gHF++5moOh0Scc+fRK7QSq56y/+Oq41LlBfp0+p7l20Dk
z4adgplZrP9m/EHvhltVJqBRomKHcsja1acAELQUy/sUkOjnbJJ543uBCHjmso6Z
HMARgcwT0FZYj8O4xY70MVBUrfphYMx0m/yqQueynCeN9G2EIWWxFMFBnZ1KrymB
S4ic7TyfePUDHRPibBVyCAyehWtNtm9PVzFpl7/9F2du
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:25 2024 by rpki-client on console-ams.rpki-client.org